[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.] [@shah_sheikh](/creator/twitter/shah_sheikh) "The Register - Security $380M lawsuit claims intruder got Clorox's passwords from Cognizant simply by asking. Hand us the mind bleach we want to flush our memories of attack Clorox is suing its service desk provider Cognizant for $XXX million in"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948017562651951219) 2025-07-23 13:49:14 UTC 2150 followers, X engagements "TheHackersNews China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure. The China-linked cyber espionage group tracked as APT41 has been attributed to a new campaign targeting government IT services in the African"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947355476263395708) 2025-07-21 17:58:20 UTC 2150 followers, XX engagements "Securelist Rumble in the jungle: APT41s new target in Africa. Kaspersky experts analyze an incident that saw APT41 launch a targeted attack on government IT services in Africa"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947205978715254978) 2025-07-21 08:04:17 UTC 2151 followers, XX engagements "Security Affairs SharePoint zero-day CVE-2025-53770 actively exploited in the wild. Microsoft warns of ongoing active exploitation of a SharePoint zero-day vulnerability tracked as CVE-2025-53770. Microsoft warns of a SharePoint zero-day"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947211250837950660) 2025-07-21 08:25:14 UTC 2150 followers, XXX engagements "Security Affairs Sophos fixed two critical Sophos Firewall vulnerabilities. Sophos addressed five Sophos Firewall vulnerabilities that could allow remote attackers to execute arbitrary code. Sophos has fixed five vulnerabilities (CVE-2025-6704"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948132494848503986) 2025-07-23 21:25:55 UTC 2150 followers, XX engagements "HelpNet Malwarebytes introduces security module designed to combat email-based threats. Malwarebytes announced the expansion of its ThreatDown product family with the launch of a new email security module designed to combat email-based threats"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947656478367572162) 2025-07-22 13:54:24 UTC 2150 followers, XX engagements "Security Affairs Microsoft issues emergency patches for SharePoint zero-days exploited in ToolShell attacks. Microsoft patched an exploited SharePoint flaw (CVE-2025-53770) and disclosed a new one warning of ongoing attacks on on-prem servers"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947256096470520270) 2025-07-21 11:23:26 UTC 2150 followers, XXX engagements "Cyberscoop Microsoft SharePoint zero-day attacks pinned on China-linked Typhoon threat groups. Linen Typhoon Violet Typhoon and Storm-2603 are behind the initial attack spree that erupted over the weekend. Other threat groups are now following"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947688466659135639) 2025-07-22 16:01:31 UTC 2150 followers, XX engagements "HelpNet Seemplicity reduces time to remediation with AI-powered capabilities. Seemplicity unveiled a major product release packed with AI-powered capabilities to cut through noise facilitate fixing teams and reduce time to remediation. This"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947649632227451368) 2025-07-22 13:27:12 UTC 2150 followers, XX engagements "The Register - Security Alaska Airlines grounds itself due to mysterious IT problem. Dare we suggest Scattered Spider has poisoned another carrier US carrier Alaska Airlines has grounded its fleet due to an unspecified IT issue"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947183944740352372) 2025-07-21 06:36:44 UTC 2151 followers, XXX engagements "TheHackersNews Critical Unpatched SharePoint Zero-Day Actively Exploited Breaches 75+ Global Organizations. A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an "active large-scale" exploitation"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946874336133927280) 2025-07-20 10:06:27 UTC 2150 followers, XX engagements "Cyberscoop Pro-Russian DDoS group NoName057(16) disrupted by international law enforcement operation. Over a dozen law enforcement agencies took action earlier this week resulting in multiple arrests. The post Pro-Russian DDoS group NoName057(16)"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1945513596370182297) 2025-07-16 15:59:21 UTC 2150 followers, XX engagements "The Register - Security China warns citizens to beware backdoored devices on land and under the sea. Suggests buying local tech to avoid infosec worries Chinas Ministry of State Security has spent the week warning of backdoored devices on land"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947857464147279919) 2025-07-23 03:13:03 UTC 2150 followers, XX engagements "Dark Reading Microsoft Rushes Emergency Patch for Actively Exploited SharePoint 'ToolShell' Bug. Malicious actors already have already pounced on the zero-day vulnerability tracked as CVE-2025-53770 to compromise US government agencies and other"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947304093212434714) 2025-07-21 14:34:09 UTC 2150 followers, XXX engagements "HelpNet Cybersecurity jobs available right now: July XX 2025. Application Penetration Tester Tata Consultancy Services Ireland Hybrid View job details As an Application Penetration Tester you will perform in-depth manual testing of web"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1944971497111519440) 2025-07-15 04:05:15 UTC 2150 followers, XX engagements "The Register - Security Microsoft patches failed to fix on-prem SharePoint which is now under zero-day attack. PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more Infosec In Brief Microsoft has warned"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947089906758545446) 2025-07-21 00:23:03 UTC 2151 followers, XX engagements "Security Affairs Singapore warns China-linked group UNC3886 targets its critical infrastructure. Singapore says China-linked group UNC3886 targeted its critical infrastructure by hacking routers and security devices. Singapore accused China-linked"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946983962821230927) 2025-07-20 17:22:04 UTC 2151 followers, XX engagements "Graham Cluley The AI Fix #60: Elons AI girlfriend the arsonist red panda and the AI that will kill you. In episode XX of The AI Fix we learn why Grok might be Elon Musk's bid for digital immortality how Meta is building a Manhattan-sized data"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947677622453801457) 2025-07-22 15:18:25 UTC 2150 followers, XX engagements "The Register - Security UK uncovers novel Microsoft snooping malware blames and sanctions GRU cyberspies. Fancy Bear can't keep its claws out of Outlook inboxes The UK government is warning that Russia's APT28 (also known as Fancy Bear or Forest"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946889125572837633) 2025-07-20 11:05:13 UTC 2150 followers, XX engagements "HelpNet Critical CrushFTP vulnerability exploited. Have you been targeted (CVE-202554309). Unknown attackers have exploited a vulnerability (CVE-202554309) in the CrushFTP enterprise file-transfer server solution to gain administrative access to"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947266753592996059) 2025-07-21 12:05:47 UTC 2150 followers, XXX engagements "TheHackersNews Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks. Microsoft on Sunday released security patches for an actively exploited security flaw in SharePoint and also released details of another"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947146611924029783) 2025-07-21 04:08:23 UTC 2151 followers, XX engagements "Security Affairs Security Affairs newsletter Round XXX by Pierluigi Paganini INTERNATIONAL EDITION. A new round of the weekly Security Affairs newsletter has arrived Every week the best security articles from Security Affairs are free in your"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946908492385673696) 2025-07-20 12:22:11 UTC 2150 followers, XX engagements "Security Affairs Hardcoded credentials found in HPE Aruba Instant On Wi-Fi devices. Hardcoded credentials in HPE Aruba Instant On Wi-Fi devices let attackers to bypass authentication and access the web interface. HPE disclosed hardcoded"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947573163614687373) 2025-07-22 08:23:21 UTC 2150 followers, XX engagements "The Register - Security Four new Android spyware samples linked to Iran's intel agency. Persians added snooping capabilities to DCHSpy after Israeli bombs fell Four new samples of Android spyware linked to the Iranian Ministry of Intelligence and"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947267190324912579) 2025-07-21 12:07:31 UTC 2150 followers, XX engagements "Dark Reading Lumma Stealer Is Back & Stealthier Than Ever. The operators of the popular and prolific malware wasted no time in regrouping after an FBI takedown in May and they're back to their old tricks"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948028084763889738) 2025-07-23 14:31:02 UTC 2150 followers, X engagements "TheHackersNews Assessing the Role of AI in Zero Trust. By 2025 Zero Trust has evolved from a conceptual framework into an essential pillar of modern security. No longer merely theoretical its now a requirement that organizations must adopt. A"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947261649028632940) 2025-07-21 11:45:30 UTC 2150 followers, XX engagements "HelpNet What the law says about your next data breach. In this Help Net Security video Chad Humphries Solution Consultant Networks & Cyber Security at Rockwell Automation explores how cyber risk quantification is becoming essential for modern"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947530861357777208) 2025-07-22 05:35:15 UTC 2151 followers, XX engagements "Security Affairs SharePoint under fire: new ToolShell attacks target enterprises. While SentinelOne did not attribute the attack to a specific threat actor The Washington Post linked it to China-nexus acors. On July XX Microsoft confirmed active"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947694757947314363) 2025-07-22 16:26:31 UTC 2150 followers, XXX engagements "HelpNet Phishing simulations: What works and what doesnt. Phishing is one of the oldest and most effective scams used by cybercriminals. No one is immune to them not even internet security experts as seen in the case of Troy Hunt who recently"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947884966898999410) 2025-07-23 05:02:20 UTC 2150 followers, XX engagements "Security Affairs U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Exploited Vulnerabilities catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds two Microsoft"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948148221999485219) 2025-07-23 22:28:25 UTC 2150 followers, XX engagements "TheHackersNews Hackers Exploit SharePoint Zero-Day Since July X to Steal Keys Maintain Persistent Access. The recently disclosed critical Microsoft SharePoint vulnerability has been under exploitation as early as July X 2025 according to"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947585376454922725) 2025-07-22 09:11:52 UTC 2150 followers, XX engagements "TheHackersNews Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages. Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947966936907702314) 2025-07-23 10:28:03 UTC 2150 followers, X engagements "Security Affairs CrushFTP zero-day actively exploited at least since July XX. Hackers exploit CrushFTP zero-day tracked as CVE-2025-54309 to gain admin access via HTTPS when DMZ proxy is off. Threat actors are exploiting a zero-day vulnerability"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947619701133062573) 2025-07-22 11:28:16 UTC 2150 followers, XX engagements "HelpNet ManageEngine strengthens identity threat defenses. ManageEngine announced identity risk exposure management and local user MFA features in AD360 its converged identity and access management (IAM) platform. The release enables security"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947919420644380734) 2025-07-23 07:19:15 UTC 2150 followers, X engagements "Wired - Security How WIRED Analyzed the Epstein Video. On this episode of Uncanny Valley we dive into the differences between what the US government said about a Jeffrey Epstein video it released and the story told by its metadata"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947368894127124903) 2025-07-21 18:51:39 UTC 2149 followers, XX engagements "Dark Reading X Chinese APTs Attack Taiwan's Semiconductor Industry. Chinese threat actors have turned to cyberattacks as a way to undermine and destabilize Taiwan's most important industrial sector"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946013501677322450) 2025-07-18 01:05:48 UTC 2151 followers, XX engagements "Dark Reading Nearly 2000 MCP Servers Possess No Security Whatsoever. Authentication in MCP the backbone of agentic AI is optional and nobody's implementing it. Instead they're allowing any passing attackers full control of their servers"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946252376358207740) 2025-07-18 16:55:00 UTC 2151 followers, XX engagements "HelpNet Microsoft SharePoint servers under attack via zero-day vulnerability with no patch (CVE-2025-53770). Attackers are exploiting a zero-day variant (CVE-2025-53770) of a SharePoint remote code execution vulnerability (CVE-2025-49706) that"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947040426801643958) 2025-07-20 21:06:26 UTC 2151 followers, XX engagements "TheHackersNews Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups. Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking groups called Linen"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947701440362828252) 2025-07-22 16:53:04 UTC 2150 followers, XX engagements "HelpNet Are your employees using Chinese GenAI tools at work Nearly one in XX employees are using Chinese-developed generative AI tools at work and theyre exposing sensitive data in the process. Thats according to new research from Harmonic"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947145106072506837) 2025-07-21 04:02:24 UTC 2151 followers, XX engagements "Security Affairs Fortinet FortiWeb flaw CVE-2025-25257 exploited hours after PoC release. Hackers exploited a Fortinet FortiWeb flaw the same day a PoC was published compromising dozens of systems. Hackers began exploiting a critical Fortinet"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946621874995126517) 2025-07-19 17:23:16 UTC 2150 followers, XX engagements "The Register - Security Microsoft patches critical SharePoint 2016 zero-days amid active exploits. Admins urged to rotate machine keys restart IIS after emergency fix Microsoft has good news for administrators running SharePoint Server 2016. The"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947667467368628383) 2025-07-22 14:38:04 UTC 2150 followers, XX engagements "The Register - Security Funding for program to stop next Stuxnet from hitting US expired Sunday. CyberSentry work grinds to a halt Government funding for a program that hunts for threats on America's critical infrastructure networks expired on"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947766927494901979) 2025-07-22 21:13:17 UTC 2150 followers, XX engagements "The Register - Security VMware prevents some perpetual license holders from downloading patches. Despite pledging help for those who dont sign for subs Broadcom says validating their entitlements will delay support Exclusive Some customers of"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948051933920461180) 2025-07-23 16:05:48 UTC 2150 followers, XX engagements "TheHackersNews Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers. A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the CVE identifier CVE-2025-54309 the"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946861226874515945) 2025-07-20 09:14:22 UTC 2150 followers, XX engagements "SANS Internet Storm Center Critical Sharepoint 0-Day Vulnerablity Exploited CVE-2025-53770 (ToolShell) (Sun Jul 20th). Microsoft announced yesterday that a newly discovered critical remote code execution vulnerability in SharePoint is being"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947014682847351087) 2025-07-20 19:24:08 UTC 2151 followers, XXX engagements "Security Affairs SECURITY AFFAIRS MALWARE NEWSLETTER ROUND XX. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape KongTuke FileFix Leads to New Interlock RAT"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1946924332464082950) 2025-07-20 13:25:07 UTC 2151 followers, XX engagements "The Register - Security Surprise surprise: Chinese spies IP stealers other miscreants attacking Microsoft SharePoint servers. With more to come no doubt At least three Chinese groups are attacking on-premises SharePoint servers via a couple of"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1947699366170399023) 2025-07-22 16:44:50 UTC 2150 followers, XX engagements "TheHackersNews Threat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and Proxyware. The threat actor behind the exploitation of vulnerable Craft Content Management System (CMS) instances has shifted its tactics to target Magento CMS"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948083290528678313) 2025-07-23 18:10:24 UTC 2150 followers, XX engagements "SANS Internet Storm Center Analyzing Sharepoint Exploits (CVE-2025-53770 CVE-2025-53771) (Wed Jul 23rd). A few days after the exploit originally became widely known there are now many different SharePoint exploit attempts in circulation. We do"  [@shah_sheikh](/creator/x/shah_sheikh) on [X](/post/tweet/1948133882294915485) 2025-07-23 21:31:26 UTC 2150 followers, XX engagements
[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]
@shah_sheikh
"The Register - Security $380M lawsuit claims intruder got Clorox's passwords from Cognizant simply by asking. Hand us the mind bleach we want to flush our memories of attack Clorox is suing its service desk provider Cognizant for $XXX million in"
@shah_sheikh on X 2025-07-23 13:49:14 UTC 2150 followers, X engagements
"TheHackersNews China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure. The China-linked cyber espionage group tracked as APT41 has been attributed to a new campaign targeting government IT services in the African" @shah_sheikh on X 2025-07-21 17:58:20 UTC 2150 followers, XX engagements
"Securelist Rumble in the jungle: APT41s new target in Africa. Kaspersky experts analyze an incident that saw APT41 launch a targeted attack on government IT services in Africa" @shah_sheikh on X 2025-07-21 08:04:17 UTC 2151 followers, XX engagements
"Security Affairs SharePoint zero-day CVE-2025-53770 actively exploited in the wild. Microsoft warns of ongoing active exploitation of a SharePoint zero-day vulnerability tracked as CVE-2025-53770. Microsoft warns of a SharePoint zero-day" @shah_sheikh on X 2025-07-21 08:25:14 UTC 2150 followers, XXX engagements
"Security Affairs Sophos fixed two critical Sophos Firewall vulnerabilities. Sophos addressed five Sophos Firewall vulnerabilities that could allow remote attackers to execute arbitrary code. Sophos has fixed five vulnerabilities (CVE-2025-6704" @shah_sheikh on X 2025-07-23 21:25:55 UTC 2150 followers, XX engagements
"HelpNet Malwarebytes introduces security module designed to combat email-based threats. Malwarebytes announced the expansion of its ThreatDown product family with the launch of a new email security module designed to combat email-based threats" @shah_sheikh on X 2025-07-22 13:54:24 UTC 2150 followers, XX engagements
"Security Affairs Microsoft issues emergency patches for SharePoint zero-days exploited in ToolShell attacks. Microsoft patched an exploited SharePoint flaw (CVE-2025-53770) and disclosed a new one warning of ongoing attacks on on-prem servers" @shah_sheikh on X 2025-07-21 11:23:26 UTC 2150 followers, XXX engagements
"Cyberscoop Microsoft SharePoint zero-day attacks pinned on China-linked Typhoon threat groups. Linen Typhoon Violet Typhoon and Storm-2603 are behind the initial attack spree that erupted over the weekend. Other threat groups are now following" @shah_sheikh on X 2025-07-22 16:01:31 UTC 2150 followers, XX engagements
"HelpNet Seemplicity reduces time to remediation with AI-powered capabilities. Seemplicity unveiled a major product release packed with AI-powered capabilities to cut through noise facilitate fixing teams and reduce time to remediation. This" @shah_sheikh on X 2025-07-22 13:27:12 UTC 2150 followers, XX engagements
"The Register - Security Alaska Airlines grounds itself due to mysterious IT problem. Dare we suggest Scattered Spider has poisoned another carrier US carrier Alaska Airlines has grounded its fleet due to an unspecified IT issue" @shah_sheikh on X 2025-07-21 06:36:44 UTC 2151 followers, XXX engagements
"TheHackersNews Critical Unpatched SharePoint Zero-Day Actively Exploited Breaches 75+ Global Organizations. A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an "active large-scale" exploitation" @shah_sheikh on X 2025-07-20 10:06:27 UTC 2150 followers, XX engagements
"Cyberscoop Pro-Russian DDoS group NoName057(16) disrupted by international law enforcement operation. Over a dozen law enforcement agencies took action earlier this week resulting in multiple arrests. The post Pro-Russian DDoS group NoName057(16)" @shah_sheikh on X 2025-07-16 15:59:21 UTC 2150 followers, XX engagements
"The Register - Security China warns citizens to beware backdoored devices on land and under the sea. Suggests buying local tech to avoid infosec worries Chinas Ministry of State Security has spent the week warning of backdoored devices on land" @shah_sheikh on X 2025-07-23 03:13:03 UTC 2150 followers, XX engagements
"Dark Reading Microsoft Rushes Emergency Patch for Actively Exploited SharePoint 'ToolShell' Bug. Malicious actors already have already pounced on the zero-day vulnerability tracked as CVE-2025-53770 to compromise US government agencies and other" @shah_sheikh on X 2025-07-21 14:34:09 UTC 2150 followers, XXX engagements
"HelpNet Cybersecurity jobs available right now: July XX 2025. Application Penetration Tester Tata Consultancy Services Ireland Hybrid View job details As an Application Penetration Tester you will perform in-depth manual testing of web" @shah_sheikh on X 2025-07-15 04:05:15 UTC 2150 followers, XX engagements
"The Register - Security Microsoft patches failed to fix on-prem SharePoint which is now under zero-day attack. PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more Infosec In Brief Microsoft has warned" @shah_sheikh on X 2025-07-21 00:23:03 UTC 2151 followers, XX engagements
"Security Affairs Singapore warns China-linked group UNC3886 targets its critical infrastructure. Singapore says China-linked group UNC3886 targeted its critical infrastructure by hacking routers and security devices. Singapore accused China-linked" @shah_sheikh on X 2025-07-20 17:22:04 UTC 2151 followers, XX engagements
"Graham Cluley The AI Fix #60: Elons AI girlfriend the arsonist red panda and the AI that will kill you. In episode XX of The AI Fix we learn why Grok might be Elon Musk's bid for digital immortality how Meta is building a Manhattan-sized data" @shah_sheikh on X 2025-07-22 15:18:25 UTC 2150 followers, XX engagements
"The Register - Security UK uncovers novel Microsoft snooping malware blames and sanctions GRU cyberspies. Fancy Bear can't keep its claws out of Outlook inboxes The UK government is warning that Russia's APT28 (also known as Fancy Bear or Forest" @shah_sheikh on X 2025-07-20 11:05:13 UTC 2150 followers, XX engagements
"HelpNet Critical CrushFTP vulnerability exploited. Have you been targeted (CVE-202554309). Unknown attackers have exploited a vulnerability (CVE-202554309) in the CrushFTP enterprise file-transfer server solution to gain administrative access to" @shah_sheikh on X 2025-07-21 12:05:47 UTC 2150 followers, XXX engagements
"TheHackersNews Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks. Microsoft on Sunday released security patches for an actively exploited security flaw in SharePoint and also released details of another" @shah_sheikh on X 2025-07-21 04:08:23 UTC 2151 followers, XX engagements
"Security Affairs Security Affairs newsletter Round XXX by Pierluigi Paganini INTERNATIONAL EDITION. A new round of the weekly Security Affairs newsletter has arrived Every week the best security articles from Security Affairs are free in your" @shah_sheikh on X 2025-07-20 12:22:11 UTC 2150 followers, XX engagements
"Security Affairs Hardcoded credentials found in HPE Aruba Instant On Wi-Fi devices. Hardcoded credentials in HPE Aruba Instant On Wi-Fi devices let attackers to bypass authentication and access the web interface. HPE disclosed hardcoded" @shah_sheikh on X 2025-07-22 08:23:21 UTC 2150 followers, XX engagements
"The Register - Security Four new Android spyware samples linked to Iran's intel agency. Persians added snooping capabilities to DCHSpy after Israeli bombs fell Four new samples of Android spyware linked to the Iranian Ministry of Intelligence and" @shah_sheikh on X 2025-07-21 12:07:31 UTC 2150 followers, XX engagements
"Dark Reading Lumma Stealer Is Back & Stealthier Than Ever. The operators of the popular and prolific malware wasted no time in regrouping after an FBI takedown in May and they're back to their old tricks" @shah_sheikh on X 2025-07-23 14:31:02 UTC 2150 followers, X engagements
"TheHackersNews Assessing the Role of AI in Zero Trust. By 2025 Zero Trust has evolved from a conceptual framework into an essential pillar of modern security. No longer merely theoretical its now a requirement that organizations must adopt. A" @shah_sheikh on X 2025-07-21 11:45:30 UTC 2150 followers, XX engagements
"HelpNet What the law says about your next data breach. In this Help Net Security video Chad Humphries Solution Consultant Networks & Cyber Security at Rockwell Automation explores how cyber risk quantification is becoming essential for modern" @shah_sheikh on X 2025-07-22 05:35:15 UTC 2151 followers, XX engagements
"Security Affairs SharePoint under fire: new ToolShell attacks target enterprises. While SentinelOne did not attribute the attack to a specific threat actor The Washington Post linked it to China-nexus acors. On July XX Microsoft confirmed active" @shah_sheikh on X 2025-07-22 16:26:31 UTC 2150 followers, XXX engagements
"HelpNet Phishing simulations: What works and what doesnt. Phishing is one of the oldest and most effective scams used by cybercriminals. No one is immune to them not even internet security experts as seen in the case of Troy Hunt who recently" @shah_sheikh on X 2025-07-23 05:02:20 UTC 2150 followers, XX engagements
"Security Affairs U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Exploited Vulnerabilities catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds two Microsoft" @shah_sheikh on X 2025-07-23 22:28:25 UTC 2150 followers, XX engagements
"TheHackersNews Hackers Exploit SharePoint Zero-Day Since July X to Steal Keys Maintain Persistent Access. The recently disclosed critical Microsoft SharePoint vulnerability has been under exploitation as early as July X 2025 according to" @shah_sheikh on X 2025-07-22 09:11:52 UTC 2150 followers, XX engagements
"TheHackersNews Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages. Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and" @shah_sheikh on X 2025-07-23 10:28:03 UTC 2150 followers, X engagements
"Security Affairs CrushFTP zero-day actively exploited at least since July XX. Hackers exploit CrushFTP zero-day tracked as CVE-2025-54309 to gain admin access via HTTPS when DMZ proxy is off. Threat actors are exploiting a zero-day vulnerability" @shah_sheikh on X 2025-07-22 11:28:16 UTC 2150 followers, XX engagements
"HelpNet ManageEngine strengthens identity threat defenses. ManageEngine announced identity risk exposure management and local user MFA features in AD360 its converged identity and access management (IAM) platform. The release enables security" @shah_sheikh on X 2025-07-23 07:19:15 UTC 2150 followers, X engagements
"Wired - Security How WIRED Analyzed the Epstein Video. On this episode of Uncanny Valley we dive into the differences between what the US government said about a Jeffrey Epstein video it released and the story told by its metadata" @shah_sheikh on X 2025-07-21 18:51:39 UTC 2149 followers, XX engagements
"Dark Reading X Chinese APTs Attack Taiwan's Semiconductor Industry. Chinese threat actors have turned to cyberattacks as a way to undermine and destabilize Taiwan's most important industrial sector" @shah_sheikh on X 2025-07-18 01:05:48 UTC 2151 followers, XX engagements
"Dark Reading Nearly 2000 MCP Servers Possess No Security Whatsoever. Authentication in MCP the backbone of agentic AI is optional and nobody's implementing it. Instead they're allowing any passing attackers full control of their servers" @shah_sheikh on X 2025-07-18 16:55:00 UTC 2151 followers, XX engagements
"HelpNet Microsoft SharePoint servers under attack via zero-day vulnerability with no patch (CVE-2025-53770). Attackers are exploiting a zero-day variant (CVE-2025-53770) of a SharePoint remote code execution vulnerability (CVE-2025-49706) that" @shah_sheikh on X 2025-07-20 21:06:26 UTC 2151 followers, XX engagements
"TheHackersNews Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups. Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking groups called Linen" @shah_sheikh on X 2025-07-22 16:53:04 UTC 2150 followers, XX engagements
"HelpNet Are your employees using Chinese GenAI tools at work Nearly one in XX employees are using Chinese-developed generative AI tools at work and theyre exposing sensitive data in the process. Thats according to new research from Harmonic" @shah_sheikh on X 2025-07-21 04:02:24 UTC 2151 followers, XX engagements
"Security Affairs Fortinet FortiWeb flaw CVE-2025-25257 exploited hours after PoC release. Hackers exploited a Fortinet FortiWeb flaw the same day a PoC was published compromising dozens of systems. Hackers began exploiting a critical Fortinet" @shah_sheikh on X 2025-07-19 17:23:16 UTC 2150 followers, XX engagements
"The Register - Security Microsoft patches critical SharePoint 2016 zero-days amid active exploits. Admins urged to rotate machine keys restart IIS after emergency fix Microsoft has good news for administrators running SharePoint Server 2016. The" @shah_sheikh on X 2025-07-22 14:38:04 UTC 2150 followers, XX engagements
"The Register - Security Funding for program to stop next Stuxnet from hitting US expired Sunday. CyberSentry work grinds to a halt Government funding for a program that hunts for threats on America's critical infrastructure networks expired on" @shah_sheikh on X 2025-07-22 21:13:17 UTC 2150 followers, XX engagements
"The Register - Security VMware prevents some perpetual license holders from downloading patches. Despite pledging help for those who dont sign for subs Broadcom says validating their entitlements will delay support Exclusive Some customers of" @shah_sheikh on X 2025-07-23 16:05:48 UTC 2150 followers, XX engagements
"TheHackersNews Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers. A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the CVE identifier CVE-2025-54309 the" @shah_sheikh on X 2025-07-20 09:14:22 UTC 2150 followers, XX engagements
"SANS Internet Storm Center Critical Sharepoint 0-Day Vulnerablity Exploited CVE-2025-53770 (ToolShell) (Sun Jul 20th). Microsoft announced yesterday that a newly discovered critical remote code execution vulnerability in SharePoint is being" @shah_sheikh on X 2025-07-20 19:24:08 UTC 2151 followers, XXX engagements
"Security Affairs SECURITY AFFAIRS MALWARE NEWSLETTER ROUND XX. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape KongTuke FileFix Leads to New Interlock RAT" @shah_sheikh on X 2025-07-20 13:25:07 UTC 2151 followers, XX engagements
"The Register - Security Surprise surprise: Chinese spies IP stealers other miscreants attacking Microsoft SharePoint servers. With more to come no doubt At least three Chinese groups are attacking on-premises SharePoint servers via a couple of" @shah_sheikh on X 2025-07-22 16:44:50 UTC 2150 followers, XX engagements
"TheHackersNews Threat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and Proxyware. The threat actor behind the exploitation of vulnerable Craft Content Management System (CMS) instances has shifted its tactics to target Magento CMS" @shah_sheikh on X 2025-07-23 18:10:24 UTC 2150 followers, XX engagements
"SANS Internet Storm Center Analyzing Sharepoint Exploits (CVE-2025-53770 CVE-2025-53771) (Wed Jul 23rd). A few days after the exploit originally became widely known there are now many different SharePoint exploit attempts in circulation. We do" @shah_sheikh on X 2025-07-23 21:31:26 UTC 2150 followers, XX engagements